Malayan Banking Bhd (Maybank), Malaysia's largest bank by assets, has responded to concerns over the security of its customer data following reports that a purported database containing customer information was advertised for sale on a dark web marketplace.

In a statement released on its official social media platform, Maybank assured the public of the continued security of its systems, emphasising that all customer information remains fully protected. The bank acknowledged the alleged claims regarding its Maybank2u database but reiterated its commitment to monitoring and safeguarding data integrity at all times.

Maybank highlighted its proactive measures against fraud, including the implementation of Secure2U for transaction authentication and the introduction of cooling-off periods for high-risk transactions. These initiatives are part of the bank's strategy to ensure the security of online transactions for its customers.

Despite the reassurances, Maybank urged customers to exercise vigilance in protecting their personal information. The bank advised customers to safeguard their User IDs, passwords, and personal details, and to remain cautious of potential threats such as malware, phishing attempts via websites or messaging platforms like WhatsApp, and fraudulent phone calls requesting sensitive credentials.

Earlier reports from online platform Lowyat.Net had indicated that a database claiming to contain up to 22 million customer records from Maybank was being offered for sale on the dark web. The alleged database reportedly included sensitive information such as customer names and passwords, with the seller purportedly asking for US$18,000 in Tether or Bitcoin.

Maybank's response underscores its proactive stance on cybersecurity amidst evolving threats, aiming to reassure its clientele while reinforcing the importance of cybersecurity awareness and caution among users of its banking services.